Towards Database Firewall: Mining the Damage Spreading Patterns

Bai, Kun; Liu, Peng

doi:10.1109/acsac.2006.52

Cited by 7 publications

(4 citation statements)

References 18 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…The accuracy of the proposed could be improved with more availability of signatures and with more efficient pre-processing algorithm. [6] has stated that the most used recovery mechanism during database crash is either rolling back or re-executing the damaged instructions. In such mechanisms database service is either stopped triggering denial of service to critical applications or ending up corrupting clean data during the execution of the new transactions.…”

Section: Fig 3: Character and Character Combination Setsmentioning

confidence: 99%

Different firewall techniques: A survey

Sharma

Kalita

Issac

2014

Fifth International Conference on Computing, Communications and Networking Technologies (ICCCNT)

View full text Add to dashboard Cite

Firewalls today are an integrated part of security mechanism of any organization or institution. Firewalls throughout the years have evolved merely from static rule mapping to understanding the dynamic behavior of traffic and react accordingly. Different firewall techniques operating in several layers of the TCP/IP model have been proposed by different authors in different times. In this paper an insight into some of the firewall techniques are discussed and also an attempt has been made to portray different challenges that exist in the application traffic.

show abstract

Section: Fig 3: Character and Character Combination Setsmentioning

confidence: 99%

Different firewall techniques: A survey

Sharma

Kalita

Issac

2014

Fifth International Conference on Computing, Communications and Networking Technologies (ICCCNT)

View full text Add to dashboard Cite

show abstract

“…Previous work [1,2,3,4,13,14,19] of attack recovery heavily depends on exploiting the system log to find out the pattern of damage spreading and schedule repair transactions. The analysis of system log is very time consuming and hard to satisfy the performance requirement of online recovery.…”

Section: Related Workmentioning

confidence: 99%

A Fine-Grained Damage Management Scheme in a Self-Healing PostgreSQL System

Bai

Liu

2008

2008 11th IEEE High Assurance Systems Engineering Symposium

Self Cite

View full text Add to dashboard Cite

Database Damage Management is an important issuein today's E-Business world. Self-healing capability is an indispensable part of the modern database system to assure high level data availability and integrity for misssion/life/business applications. Although a number of research projects have been done to tackle the emerging data damage threats to DBMS, existing mechanisms are still limited in finely distinguishing uncontaminated data from true corrupted data, which causes availability loss. In this paper, we propose TRACE-FG, a fine-grained zero-systemdown-time database damage tracking, quarantine, and recovery solution with negligible run time overhead. TRACE-FG is able to decompose the "in-danger" unit and save the legitimated work. We built TRACE-FG into the kernel of PostgreSQL. Our experimental results demonstrated that TRACE-FG outperforms the original TRACE system and the standard recovery mechanism in terms of data availability and system service delay.

show abstract

“…Previous work [1,2,3,13,14,19] of attack recovery heavily depends on exploiting the system log to find out the pattern of damage spreading and schedule repair transactions. The analysis of system log is very time consuming and hard to satisfy the performance requirement of on-line recovery.…”

Section: Related Workmentioning

confidence: 99%

A data damage tracking quarantine and recovery (DTQR) scheme for mission-critical database systems

Bai

Liu

2009

Proceedings of the 12th International Conference on Extending Database Technology: Advances in Database Technology

Self Cite

View full text Add to dashboard Cite

Database security research aims to protect a database from unintended activities, such as authenticated misuse, malicious attacks. In recent years, surviving DBMS from an attack is becoming even more crucial because networks have become more open and the increasingly critical role that database servers are playing nowadays. Unlike the traditional database failure/attack recovery mechanisms, in this paper, we propose a light-weight dynamic Data Damage Tracking, Quarantine, and Recovery (DT QR) solution. We built the DTQR scheme into the kernel of PostgreSQL. We comprehensively study this approach from a few aspects (e.g., system overhead, impact of the intrusion detection system), and the experimental results demonstrated that our DTQR can sustain an excellent data service while healing the database server when it is under a malicious attack.

show abstract

Towards Database Firewall: Mining the Damage Spreading Patterns

Abstract: Abstract

Cited by 7 publications

References 18 publications

Different firewall techniques: A survey

Different firewall techniques: A survey

A Fine-Grained Damage Management Scheme in a Self-Healing PostgreSQL System

A data damage tracking quarantine and recovery (DTQR) scheme for mission-critical database systems

Contact Info

Product

Resources

About